Improper sanitization of CSS values in html/template
CVE-2023-24539

7.3HIGH

Key Information:

Vendor: Go Standard Library
Status: Html/template
Vendor: CVE Published:; 11 May 2023

What is CVE-2023-24539?

This vulnerability arises from the mishandling of angle brackets in CSS contexts, allowing for potential injection attacks. Templates using multiple actions, defined by a '/' character, can inadvertently close the CSS context, thereby enabling the execution of malformatted or unexpected HTML. This is particularly concerning when dealing with untrusted input, which could lead to security breaches or exploitation of web applications.

Affected Version(s)

html/template 0 < 1.19.9

html/template 1.20.0-0 < 1.20.4

References

https://go.dev/issue/59720

https://go.dev/cl/491615

https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 11, 2023
Vulnerability Reserved
Jan 25, 2023

Credit

Juho Nurminen of Mattermost